Microsoft Security Response Center Blog Alerts

CVE-2024-49071 Windows Defender Information Disclosure Vulnerability

Published December 12, 2024

Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network.

CVE-2024-49084 Windows Kernel Elevation of Privilege Vulnerability

Published December 10, 2024

Information published.

CVE-2024-49107 WmsRepair Service Elevation of Privilege Vulnerability

Published December 10, 2024

Information published.

CVE-2024-49142 Microsoft Access Remote Code Execution Vulnerability

Published December 10, 2024

Information published.

CVE-2024-49083 Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Published December 10, 2024

Information published.

CVE-2023-36435 Microsoft QUIC Denial of Service Vulnerability

Published December 10, 2024

To comprehensively address CVE-2023-36435, Microsoft has released security updates on October 24, 2023 for .NET 7.0.

Microsoft recommends that customers running .NET install the updates to be fully protected from the vulnerability.

CVE-2024-49087 Windows Mobile Broadband Driver Information Disclosure Vulnerability

Published December 10, 2024

Information published.

CVE-2024-49106 Windows Remote Desktop Services Remote Code Execution Vulnerability

Published December 10, 2024

Information published.

ADV240002 Microsoft Office Defense in Depth Update

Published December 10, 2024

Microsoft has released an update for Microsoft Office that provides enhanced security as a defense in depth measure.

CVE-2024-49090 Windows Common Log File System Driver Elevation of Privilege Vulnerability

Published December 10, 2024

Information published.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

AbuseIPDB Contributor Badge

© 2025, Network Services Group |  216.73.216.211
Contributor,  Detroit Internet Exchange